Mercurial > bms / file comparison

comparison: www/includes/db_inventory_mash_profiles.php

www/includes/db_inventory_mash_profiles.php

changeset 23
4b157d7a1cee
child 25
d9da6c40dff5
equal deleted inserted replaced
22:99c02fa797f9 23:4b157d7a1cee
1 <?php
2
3 require($_SERVER['DOCUMENT_ROOT']."/config.php");
4 require($_SERVER['DOCUMENT_ROOT']."/version.php");
5
6 #Connect to the database
7 $connect = mysqli_connect(DBASE_HOST, DBASE_USER, DBASE_PASS, DBASE_NAME);
8 if (! $connect) {
9 die('Connect Error (' . mysqli_connect_errno() . ') ' . mysqli_connect_error());
10 }
11
12 // get data and store in a json array
13 $query = "SELECT * FROM inventory_mash_profiles";
14 if (isset($_GET['insert'])) {
15 // INSERT COMMAND
16 $sql = "INSERT INTO `inventory_mash_profiles` SET name='" . mysqli_real_escape_string($connect, $_GET['name']);
17 $sql .= "', grain_temp='" . $_GET['grain_temp'];
18 $sql .= "', notes='" . mysqli_real_escape_string($connect, $_GET['notes']);
19 $sql .= "', tun_temp='" . $_GET['tun_temp'];
20 $sql .= "', sparge_temp='" . $_GET['sparge_temp'];
21 $sql .= "', ph='" . $_GET['ph'];
22 $sql .= "', tun_weight='" . $_GET['tun_weight'];
23 $sql .= "', tun_specific_heat='" . $_GET['tun_specific_heat'];
24 ($_GET['equip_adjust'] == 'true') ? $sql .= "', equip_adjust='1" : $sql .= "', equip_adjust='0";
25 $sql .= "', steps='" . mysqli_real_escape_string($connect, $_GET['steos']);
26 $sql .= "';";
27 $result = mysqli_query($connect, $sql);
28 if (! $result) {
29 syslog(LOG_NOTICE, "db_inventory_mash_profiles: ".$sql." result: ".mysqli_error($connect));
30 } else {
31 syslog(LOG_NOTICE, "db_inventory_mash_profiles: inserted ".$_GET['name']);
32 }
33 echo $result;
34
35 } else if (isset($_GET['update'])) {
36 // UPDATE COMMAND
37 $sql = "UPDATE `inventory_mash_profiles` SET name='" . mysqli_real_escape_string($connect, $_GET['name']);
38 $sql .= "', grain_temp='" . $_GET['grain_temp'];
39 $sql .= "', notes='" . mysqli_real_escape_string($connect, $_GET['notes']);
40 $sql .= "', tun_temp='" . $_GET['tun_temp'];
41 $sql .= "', sparge_temp='" . $_GET['sparge_temp'];
42 $sql .= "', ph='" . $_GET['ph'];
43 $sql .= "', tun_weight='" . $_GET['tun_weight'];
44 $sql .= "', tun_specific_heat='" . $_GET['tun_specific_heat'];
45 ($_GET['equip_adjust'] == 'true') ? $sql .= "', equip_adjust='1" : $sql .= "', equip_adjust='0";
46 $sql .= "', steps='" . mysqli_real_escape_string($connect, $_GET['steos']);
47 $sql .= "' WHERE record='" . $_GET['record'] . "';";
48 $result = mysqli_query($connect, $sql);
49 if (! $result) {
50 syslog(LOG_NOTICE, "db_inventory_mash_profiles: ".$sql." result: ".mysqli_error($connect));
51 } else {
52 syslog(LOG_NOTICE, "db_inventory_mash_profiles: updated record ".$_GET['record']);
53 }
54 echo $result;
55
56 } else if (isset($_GET['delete'])) {
57 // DELETE COMMAND
58 $sql = "DELETE FROM `inventory_mash_profiles` WHERE record='".$_GET['record']."';";
59 $result = mysqli_query($connect, $sql);
60 if (! $result) {
61 syslog(LOG_NOTICE, "db_inventory_mash_profiles: ".$sql." result: ".mysqli_error($connect));
62 } else {
63 syslog(LOG_NOTICE, "db_inventory_mash_profiles: deleted record ".$_GET['record']);
64 }
65 echo $result;
66
67 } else {
68 // SELECT COMMAND
69 $result = mysqli_query($connect, $query) or die("SQL Error 1: " . mysqli_error($connect));
70 while ($row = mysqli_fetch_array($result, MYSQLI_ASSOC)) {
71 $suppliers[] = array(
72 'record' => $row['record'],
73 'name' => $row['name'],
74 'grain_temp' => $row['grain_temp'],
75 'tun_temp' => $row['tun_temp'],
76 'sparge_temp' => $row['sparge_temp'],
77 'ph' => $row['ph'],
78 'tun_weight' => $row['tun_weight'],
79 'tun_specific_heat' => $row['tun_specific_heat'],
80 'equip_adjust' => $row['equip_adjust'],
81 'notes' => $row['notes'],
82 'steps' => $row['steps']
83 );
84 }
85 echo json_encode($suppliers);
86 }
87 ?>

Mercurial Repository: bms

mercurial